Security Advisory

CVE-2025-9036

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-08-14 13:39:19

Last updated 2025-08-14 15:05:37

Assigner Rockwell

State PUBLISHED

Description

A security issue in the runtime event system allows unauthenticated connections to receive a reusable API token. This token is broadcasted over a WebSocket and can be intercepted by any local client listening on the connection.

← Browse all CVEs View on cve.org ↗